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Amendments to the Claims 
This listing of claims will replace all prior versions of claims in the application: 

Listing of Claims: 

1 . (Currently Amended) A system that facilitates access to a plurality of shared software 
objects by disparate entities, comprising: 

a platform component that receives a request to access an object by an entity, wherein the 
entity requests access to an object on behalf of another entity , the entitv and the another entitv 
are each an individual human or a business : 

a data store that stores security information on classes of the objects; and 
a verification component that employs the security information to verify that the entity 
has permission to call an Application Programming Interface (API) for the object aiid/or operate 
on the object , the verification component permits the another entity to call or operate on the 
object upon verification that the entity has the permission . 

2. (Previously Presented) The system of claim 1, the verification component exposes the 
object to the entity if permission exists. 

3. (Previously Presented) The system of claim 1, the verification component masks the 
object from the entity if permission does not exist. 

4. (Original) The system of claim 1, the platform further comprising a Subscription 
Platform Service to facilitate automated billing and provisioning of accounts. 

5. (Currently Amended) The system of claim 1 , the verification component facilitates that 
[[an]] the entity receive full access to Application Programming Interfaces (API's) and/or objects 
for which there is a business need and partial or limited access to other API's or business objects. 



2 



10/729,515 



MS306 1 1 6.0 1/MSFTP502US 



6. (Original) The system of claim 1, the data store provides default or determined security 
information related to a class. 

7. (Original) The system of claim 6, further comprising a component to override the default 
security information with higher or different security options. 

8. (Previously Presented) The system of claim 1, further comprising a proxy tenant 
component wherein an intermediate entity places calls into a subscription platform service on 
behalf of another entity and achieves access to selected objects in order for the another entity to 
complete a subscription purchase. 

9. (Original) The system of claim 1, further comprising a management portal to facilitate 
authorization of information. 

10. (Original) The system of claim 1, further comprising a component to provide an explicit 
security mapping for an object. 

1 1 . (Original) The system of claim 1 , further comprising a component to enable an implicit 
security mapping from an explicitly mapped object or to derive an implied security permission 
by utilizing related objects. 

12. (Original) The system of claim 1, the verification component employs operating system 
identities to facilitate security authorization procedures. 

13. (Original) The system of claim 1, further comprising at least one of a sign-up API caller, 
an account management API caller, and a customer care API caller. 

14. (Original) The system of claim 13, further comprising at least one API related to at least 
one of a sign-up API group, an account management API group, a customer care API group, and 
an object designer API group. 
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15. (Original) The system of claim 1, further comprising authorization logic that determines 
whether an API can access an object via an access rights set. 

16. (Original) The system of claim 1, further comprising at least one of a restricted audience 
offer, a conversion component, and a payment instrument component. 

17. (Cancelled). 

18. (Currently Amended) A method to facilitate security for subscription objects, comprising: 
storing one or more security options in a database, the security options related to an 

automated billing and provisioning system, wherein the security options include at least one of a 
restricted audience offer or conversion of a subscription from a first type to a second type; 

assigning the security options to a class; and 

inheriting the security options by object members of the class. 

19. (Original) The method of claim 1 8, further comprising at least one of explicitly and 
implicitly assigning the security options to the object members of the class. 

20. (Original) The method of claim 18, further comprising accessing the database via an 
application programming interface (API). 

21 . (Original) The method of claim 20, further comprising automatically authorizing the API. 

22. (Original) The method of claim 21, further comprising returning an error code if an 
authorization procedure fails. 

23. (Original) The method of claim 21 , further comprising analyzing a simple object access 
protocol request. 

24. (Original) The method of claim 21, further comprising analyzing one or more security 
credentials. 
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25. (Original) The method of claim 24, further comprising employing a cache to process the 
credentials. 

26. (Original) The method of claim 18, the automated billing and provisioning system 
further comprising a Subscription Platform Service. 

27. (Original) The method of claim 18, the security options are associated with default 
security parameters. 

28. (Original) The method of claim 18, further comprising overriding the default security 
parameters with other security options. 

29. (Original) The method of claim 18, further comprising employing an intermediate proxy 
that places calls into a subscription platform service on behalf of another tenant. 

30. (Currently Amended) A system to facilitate business object security, comprising: 
means for authenticating at least one entity attempting access to an online billing and 

service, wherein the at least one entity is attempting access on behalf of another entit v, the entitv 
and the another entitv are each an individual human or a business : 

means for authorizing the at least one entity and authorizing the another entitv upon 
authorization of the at least one entitv : and 

means for associating a security parameter with at least one business object from a 
globalized region of a database. 

3 1 . (Currently Amended) A data packet stored on a computer readable storage medium that 
when transmitted signal to facilitates communications between at least two components of an 
subscription platform service, comprising: 

a data packet comprising: 
an Application Programming Interface packet to identify a partner; 
a security credential packet to facilitate authorization of the partner; and 
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a security parameter packet inherited by a business object to facilitate access to a 
subscription platform database, wherein the security parameter packet includes at least one of a 
restricted audience offer or conversion of a subscription from a first type to a second type. 

32. (Currently Amended) A computer readable storage medium having a data structure stored 

thereon, the data structure comprising: 

at least one security field indicating global security parameters in a subscription platform 

database, wherein the global security parameters include at least one of a restricted audience 

offer or conversion of a subscription from a first type to a second type; 

at least one object field associated with an account in the database; and 
at least one class field to associate the security field and the object field. 



6 



